Tashkent, Uzbekistan – Podrobno.uz. The National Agency for Social Protection has officially confirmed a cyberattack targeting its outdated database. The agency is currently conducting a comprehensive audit to determine the precise number of citizens whose personal data may have been compromised as a result of the incident.
According to “PressUzb,” a Telegram channel with government ties, an operational headquarters has been established within the agency to address the breach and analyze the situation. Cybersecurity specialists have been enlisted to investigate the nature of the data leak and assess potential risks to the public. The agency emphasizes that the attack specifically targeted an archived database, though the extent of current data exposure is under evaluation. t.me/pressuzb/5760
The situation is being closely monitored by experts. An official statement is expected soon, detailing the specific categories of information accessed by malicious actors and the measures being implemented to prevent future incidents.
It should be recalled that Uzbek government bodies recently affirmed the security of their information systems amidst reports of a breach affecting the central authorization server for the E-Gov platform. These agencies uniformly asserted the invulnerability of their databases.
Previously, reports emerged indicating that the data of at least 15 million Uzbek citizens may have been exposed online. According to reports published on Reddit, the primary OAuth server for the electronic government system – a critical component used for accessing government, banking, and commercial websites – was compromised. The incident allegedly provided access to personal information (full names, addresses, phone numbers, and passport details) from the National Agency for Social Protection (IHMA.UZ), the Committee on Statistics (STAT.UZ), the Mortgage Refinancing Company, and other entities.